Skip to Main Content
Forums

Java Security

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Associate a custom Principal with a request??

843811Jan 17 2002 — edited Sep 2 2009
I�m trying to get a grip about the security model for J2EE applications.
Today im working on a webapplication where I want to be able to restrict resources via declaritve or programatically access to any resource defined (files, webpages, methods.)
We use a LDAP directory for authentication (Novell eDirectory) but today we just initialize a user object that does�nt conform to the security model of J2EE.
I understand (hopefully) that our authenticated user should be represented of a object of type java.security.Principal, but how do i associate a custom Principal object with the Http request that the user invokes?

Niclas
Comments
Locked Post
New comments cannot be posted to this locked post.
Post Details
Locked on Sep 30 2009
Added on Jan 17 2002
#other-security-apis-tools-and-issues
6 comments
187 views